I found similar questions here, but not really a comprehensive answer. My setup is a client connected to the LAN1 interface and an IoT SIM card for Internet access.
To minimize traffic when the router is "idle" (meaning that there is no traffic from the clients), I did the following:
Disable MultiWan
Network - WAN: Check Mobile (WAN) as Main WAN, uncheck everything else. This disables MultiWan, which creates traffic by sending regular ICMP packets to check link availability
Disable RMS
System - Administration - RMS: Set Connection Type to “Disabled”. Otherwise the router will try to connect to the RMS host
I still did see some cellular traffic. I then enabled the "Block_DNS_forwarding" traffic rule in the firewall settings, but still would see some DNS traffic originating from the WAN IP of the router to the DNS servers provided by the mobile operator. Once I changed the DNS on the client to an unused IP, this traffic would also disappear.
So here is my question: What firewall rule would I have to create to prevent DNS traffic like described above (DNS Forwarding)? I tried a few things, but none of it would prevent that traffic. The workaround with the invalid DNS setting on the client is fine, but I'd really like to solve this on the router.